Securing Telnet Access to a Cisco Router

Configure Telnet Access with Encrypted Passwords

Prev Question Next Question

Question

A network administrator needs to allow only one Telnet connection to a router.

For anyone viewing the configuration and issuing the show run command, the password for Telnet access should be encrypted.

Which set of commands will accomplish this task?

Answers

A. service password-encryption access-listl permit 192.168.1.0.0.0.0.255 line vty0 4 login password cisco access-class 1

B. enable password secret line vty0 login password cisco

C. service password-encryption line vty1 login password cisco

D. service password-encryption line vty0 4 login password cisco

Show Answer

Explanations

Click on the arrows to vote for the correct answer

A. B. C. D.

The correct answer is D. The command "service password-encryption" is used to encrypt the password and is applied to the line configuration. The command "line vty0 4" is used to specify the virtual terminal lines to which the configuration will apply. In this case, it applies to lines vty0 to vty4. The command "login" enables the login prompt for the virtual terminal line. The command "password cisco" specifies the password that will be required to access the virtual terminal line.

Option A is incorrect because it includes an access list that permits traffic from the 192.168.1.0/24 network to access the router. This is not necessary to allow only one Telnet connection. Also, the access list is not applied to any interface or line.

Option B is incorrect because it only specifies the enable password and does not apply to Telnet access or virtual terminal lines.

Option C is incorrect because it only applies to vty1 and does not specify the range of virtual terminal lines.

Prev Question Next Question